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1 Safe pointers 
Christoph Grein 

December 1999 ACM SIGAda Ada Letters, Volume xix issue 4 
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Todd M. Austin, Scott E. Breach, Gurindar S. Sohi 

June 1994 ACM SIGPLAN Notices , Proceedings of the ACM SIGPLAN 1994 conference 
on Programming language design and implementation, Volume 29 issue 6 

Full text available: fB pdftl.62 MEn Additional Information: Mi.j£ilatlaa s&S&ao!;, rsMfiXi&SS., SltiOSS* 

' ^ " terras. 

We present a pointer and array access checking technique that provides complete error 
coverage through a simple set of program transformations. Our technique, based on an 
extended safe pointer representation, has a number of novel aspects. Foremost, it is the 
first technique that detects all spatial and temporal access errors. Its use is not limited by 
the expressiveness of the language; that is, it can be applied successfully to compiled or 
interpreted languages with subscripted and mutabl ... 

CCured: type-safe retrofitting of iegacy code 
George C. Necula, Scott McPeak, Westley Weimer 

January 2002 ACM SIGPLAN Notices, Proceedings of the 29th ACM SIGPLAN-SIGACT 
symposium on Principles of programming languages, volume 37 issue 1 

Full text available: ^|?df{1. : 85.MB}. Additional Information: MLsMlon, abstract, Merences, .citings 

In this paper we propose a scheme that combines type inference and run-time checking to 
make existing C programs type safe. We describe the CCured type system, which extends 
that of C by separating pointer types according to their usage. This type system allows both 
pointers whose usage can be verified statically to be type safe, and pointers whose safety 
must be checked at run time. We prove a type soundness result and then we present a 
surprisingly simple type inference algorithm that is able ... 

4 CCure<d iixlh^ 

Jeremy Condit, Matthew Harren, Scott McPeak, George C. Necula, Westley Weimer 
May 2003 ACM SIGPLAN Notices , Proceedings of the ACM SIGPLAN 2003 conference 
on Programming language design and implementation, volume 38 issue 5 
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Full text available: ^pdf(262,59.KB. ) Additional Information: MLciMten, ab.UiJ.aA Ind^terms 

CCured is a program transformation system that adds memory safety guarantees to C 
programs by verifying statically that memory errors cannot occur and by inserting run-time 
checks where static verification is insufficient. This paper addresses major usability issues in 
a previous version of CCured, in which many type casts required the use of pointers whose 
representation was expensive and incompatible with precompiled libraries. We have 
extended the CCured type inference algorithm to recognize a ... 

Keywords: C, compatibility with library code, memory safety, run-time type information, 
type safety 
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Jean-Jacques Girardot 

May 1990 ACM SIGAPL APL Quote Quad , Conference proceedings on APL 90: for the 

future, Volume 20 Issue 4 

Full text available- f®.ficif(1 21 f/B : Additional Information: fun ctesfcon , abstract, references , citings, index 
^ * terms 

Generalized arrays in APL have been for long a very controversial subject. Since we are now 
undertaking the redaction of an extended standard for APL, it seems legitimate to reopen 
the old debate. An analysis of both nested and boxed array systems, in the light of a new 
development in APL which consists of the introduction of a new data-type in the language, 
shows the interest of having both systems with their own specificities. 

6 Protecting C programs from attacks via invalid pointer dereferences 
Suan Hsi Yong, Susan Horwitz 

September 2003 ACM SIGSOFT Software Engineering Notes , Proceedings of the 9th 

European software engineering conference held jointly with 10th ACM 
SIGSOFT international symposium on Foundations of software 
engineering, volume 28 issue 5 

Full text available: pciff526.1S KB - Additional Information: fcjj citation, abstract, references . Index terms 

Writes via unchecked pointer dereferences rank high among vulnerabilities most often 
exploited by malicious code. The most common attacks use an unchecked string copy to 
cause a buffer overrun, thereby overwriting the return address in the function's activation 
record. Then, when the function "returns", control is actually transferred to the attacker's 
code. Other attacks may overwrite function pointers, setjmp buffers, system-call arguments, 
or simply corrupt data to cause a denial of service. A ... 

Keywords: buffer overrun, instrumentation, security, static analysis 



7 Triangulations In CGAL (extended abstract) 

Jean-Daniel Boissonnat, Olivier Devillers, Monique Teillaud, Mariette Yvinec 
May 2000 Proceedings of the sixteenth annual symposium on Computational 
geometry 

Full text available: f§£&f(2£&.Q2.}<ft) Additional Information: M.GMi$>fi, r&f&&8$&& sAtinaa, jj?.djex..te.?fXiS. 
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J. Stanley Warford 

March 1999 ACM SIGCSE Bulletin , The proceedings of the thirtieth SIGCSE technical 

symposium on Computer science education, volume 31 issue 1 
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This paper describes the BlackBox framework, an object-oriented application development 
environment, and our experience with its use over the past several years in the CS1/CS2 
course. This little-known framework features: (1) a graphical user interface that is simple 
enough for beginning students to program, (2) true cross-platform capability, (3) 
guaranteed memory-safe pointers with automatic garbage collection, (4) a new language, 
Component Pascal, that combines the best of Java and Pascal, (5 ... 

Keywords: BlackBox, CS1, CS2, component Pascal, formal methods, frameworks, 
programming languages 



9 Using Ada. and C±tJ..n^ 
Raymond J. Toal 

January 1996 ACM SIGAda Ada Letters, volume xvi issue l 

Full text available: ^ pdfi(?S4.3i KB) Additional information: full citation, abstract index terms 

Undergraduate students of Computer Science or Software Engineering must become familiar 
with imperative programming languages, due to the extensive use of these languages in 
industry. Perhaps the two most interesting imperative languages, from a technical 
standpoint, are Ada and C++, as these two languages include a number of modern features 
and enjoy widespread popularity. We argue that a four-year undergraduate curriculum in 
Computer Science which emphasizes imperative programming languages be ... 



1 0 LLVA: A. Low-level. Virtual. InstmCHon Q 
Vikram Adve, Chris Lattner, Michael Brukman, Anand Shukla, Brian Gaeke 
December 2003 Proceedings of the 36th Annual IEEE/ ACM International Symposium on 
Microarchitecture 

Full text available: ffifidff 196.03 KB} 

J|f Additional Information: MLoitatlon, abstract 

W. Publisher Site 

A virtual instruction set architecture (V-ISA) implementedvia a processor-specific software 
translation layercan provide great flexibility to processor designers. Recentexamples such as 
Crusoe and DAISY, however, haveused existing hardware instruction sets as virtual 
ISAs, which complicates translation and optimization. In fact,there has been little research 
on specific designs for a virtuallSA for processors. This paper proposes a novel virtuallSA 
(LLVA) and a translation strategy for implementi ... 



1 1 A tru]y..gejie^ 

Harald Ganzinger, Robert Giegerich, Ulrich Moncke, ..Rein hard i Wilhelm 

June 1982 ACM SIGPLAN Notices , Proceedings of the 1982 SIGPLAN symposium on 

Compiler construction, volume 17 issue 6 
Full text available- fltadflSi 8 86 KQ\ Additional Information: M.oiMon, sbMract, refer ences, dUngs, jru^x 

This paper describes semantic processing in the compiler generating system MUG2. MUG2 
accepts high-level descriptions of the semantics of a programming language including full 
runtime semantics, data flow analysis, and optimizing transformations. This distinguishes 
MUG2 from systems such as YACC [Joh75], HLP [HLP78], PQCC [PQC79], or its own former 
version [GRW77] with respect to expressive power and convenience. In this respect, MUG2 
comes close to semantics-directed systems such as [Mos76 ... 
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Benjamin Chelf, Dawson Engier, Seth Hailem 

November 2002 ACM SIGSOFT Software Engineering Notes , Proceedings of the 2002 
ACM SIGPLAN-SIGSOFT workshop on Program analysis for software 
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tools and engineering, volume 28 issue l 

Full text available: Wi ptiff 190.85 KB) Additional Information: fa« citation, refersrsces, index terms 
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modern systems programming language 
David Evers, Peter Robinson 

September 1992 Proceedings of the 5th workshop on ACM SIGOPS European workshop: 
Models and paradigms for distributed systems structuring 

Full text available: ^BdM5.3.-.2S.KBj Additional Information: M.sMlon, abstract, references 

Modula-3 provides language-level features such as threads, objects and exceptions which 
are useful in distributed systems. The ANSA testbench provides a complete infrastructure for 
object-based distributed systems, but currently requires the use of C as the main 
programming language. We describe a successful attempt to marry the two, which provides 
a practical example of how a modern systems programming language can make the 
construction of object-based distributed systems more congenial for the ... 

1 4 Autom ated . d jsco y e ry„ of. js^ped . m e Q 
Morgan Deters, Ron K. Cytron 

June 2002 ACM SIGPLAN Notices , Proceedings of the third international symposium 
on Memory management, volume 38 issue 2 supplement 

Full text available: ^t)dff227 49 KB) Additional Information: M cMlon, abstract, inferences, citings, index 

* terms 

Advances in operating systems and languages have brought the ideal of reasonably- 
bounded execution time closer to developers who need such assurances for real-time and 
embedded systems applications. Recently, extensions to the Java libraries and virtual 
machine have been proposed in an emerging standard, which provides for specification of 
release times, execution costs, and deadlines for a restricted class of threads. To use such 
features, the code executing in the thread must never reference s ... 

Keywords: garbage collection, memory management, real-time Java, regions, trace-based 
analysis 

15 The .design, and jmpjeme^ Q 
Eyal Flato, Dan Halperin, Iddo Hanniel, Oren Nechushtan, Eti Ezra 

December 2000 Journal of Experimental Algorithmics (JEA), volume 5 

Full text available: g pejf(934.22 KB) 

j^..psf3 : 78MS).Q Additional Information: MLsitet&D., citing. 
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Dawson Engler, David Yu Chen, Seth Hailem, Andy Chou, Benjamin Chelf 
October 2001 ACM SIGOPS Operating Systems Review , Proceedings of the eighteenth 
ACM symposium on Operating systems principles, volume 35 issue 5 

Full text available - W.|>df(1 53 f/B ; Additional Information: fui: citation , abstract ref-srgnces. citings, irirfex 
^ ; * terms 

A major obstacle to finding program errors in a real system is knowing what correctness 
rules the system must obey. These rules are often undocumented or specified in an ad hoc 
manner. This paper demonstrates techniques that automatically extract such checking 
information from the source code itself, rather than the programmer, thereby avoiding the 
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need for a priori knowledge of system rules.The cornerstone of our approach is inferring 
programmer "beliefs" that we then cross-check for contradict ... 

Andrew Kennedy, Don Syme 

May 2001 ACM SIGPLAN Notices , Proceedings of the ACM SIGPLAN 2001 conference 
on Programming language design and implementation, volume 36 issue 5 

Full text available: "ffipdf( 1.25 MBj Additional Information: fuJi. citation., abstract, references, citings, Index 
• y&§. . terms 

The Microsoft.NET Common Language Runtime provides a shared type system, intermediate 
language and dynamic execution environment for the implementation and inter-operation of 
multiple source languages. In this paper we extend it with direct support for parametric 
polymorphism (also known as generics), describing the design through examples written in 
an extended version of the C# programming language, and explaining aspects of 
implementation by reference to a prototype extension to the runtim ... 

Scott M. Pike, Bruce W. Weide, Joseph E. Hollingsworth 

March 2000 ACM SIGCSE Bulletin , Proceedings of the thirty-first SIGCSE technical 
symposium on Computer science education, volume 32 issue l 

Full text available: ^p.df(5M-01.KB.) Additional Information: MLcjMl&n, abstract, wMl&W®$, index .terms 

Pointer errors are stumbling blocks for student and veteran programmers alike. Although 
languages such as Java use references to protect programmers from pointer pitfalls, the use 
of garbage collection dictates that languages like C++ will still be used for real-time 
mission-critical applications. Pointers will stay in the classroom as long as they're used in 
industry, so as educators, we must find better ways to teach them. This paper presents 
checked pointers, a simple wr ... 
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Suan Hsi Yong, Susan Horwitz, Thomas Reps 

May 1999 ACM SIGPLAN Notices , Proceedings of the ACM SIGPLAN 1999 conference 
on Programming language design and implementation, volume 34 issue 5 

Full text available: 1S pdfii.gS MB} Additional Information: fell. citation, abstract, references, citings, \r\oex 
' ™" terms 

Type casting allows a program to access an object as if it had a type different from its 
declared type. This complicates the design of a pointer-analysis algorithm that treats 
structure fields as separate objects; therefore, some previous pointer-analysis algorithms 
"collapse" a structure into a single variable. The disadvantage of this approach is that it can 
lead to very imprecise points-to information. Other algorithms treat each field as a separate 
object based on its offset and size. While ... 
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